Published: 09/09/2020 Updated: 14/12/2020

CVSS v2 Base Score: 3.3 | Impact Score: 2.9 | Exploitability Score: 6.5

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 295

Vector: AV:A/AC:L/Au:N/C:P/I:N/A:N

A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions), SIMATIC S7-400 CPU family (incl. SIPLUS variants) (All versions), SIMATIC WinAC RTX (F) 2010 (All versions), SINUMERIK 840D sl (All versions). The authentication protocol between a client and a PLC via port 102/tcp (ISO-TSAP) insufficiently protects the transmitted password. This could allow an attacker that is able to intercept the network traffic to obtain valid PLC credentials.

Vulnerable Product	Search on Vulmon	Subscribe to Product
siemens simatic s7-300 cpu 312 firmware
siemens simatic s7-300 cpu 314 firmware
siemens simatic s7-300 cpu 315-2 dp firmware
siemens simatic s7-300 cpu 315-2 pn firmware
siemens simatic s7-300 cpu 317-2 pn firmware
siemens simatic s7-300 cpu 317-2 dp firmware
siemens simatic s7-300 cpu 315f-2 dp firmware
siemens simatic s7-300 cpu 315f-2 pn firmware
siemens simatic s7-300 cpu 317f-2 pn firmware
siemens simatic s7-300 cpu 317f-2 dp firmware
siemens simatic s7-400 cpu 412 firmware
siemens simatic s7-400 cpu 414 firmware
siemens simatic s7-400 cpu 416 firmware
siemens simatic s7-400 cpu 417 firmware

CWE-522 https://cert-portal.siemens.com/productcert/pdf/ssa-381684.pdf https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-15791

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect